eTrust 20/20 Shows Access to Physical Facilities and Information Resources

Today’s business assets are more heavily weighted to “bits and bytes” than ever before. Consequently, organizations are seeing their security-related data grow in magnitude and complexity, and finding that such data exists in numerous, heterogeneous locations, including IT applications and security logs, as well as physical access management systems. The security monitoring gap between physical and IT systems can result in major vulnerabilities. While organizations often concentrate their security strategies around external risks, the most significant financial impact from a security incident may come from the theft of corporate information or other assets by an inside perpetrator or a disgruntled employee. Organizations need a cost-effective solution that reduces risk exposure, unites physical and IT security, helps quickly identify abnormal behavior and enforces user accountability.

Automated Detection of Suspicious Behavior

eTrust 20/20 automatically analyzes and flags suspicious behaviors, such as a sudden change of user activities or an attempt to access unauthorized resources. Leveraging business intelligence technologies found in CA’s CleverPath™ Aion® Business Rules Expert inference engine, eTrust 20/20 also applies objective rules to rank suspicious behavior; thereby, helping to ensure employee privacy and remove speculation from the auditing process. These are some of the benefits your organization can derive from eTrust 20/20:

• Reduce exposure to business risk. Using inference analysis to detect abnormal behavior and to rank suspicious users, eTrust 20/20 protects corporate assets in ways that go beyond traditionally reactive security methods .

• Minimize security audit and forensic investigation costs. eTrust 20/20 provides an intuitive graphical user interface (GUI) for security operators and auditors, which simplifies the audit process and reduces the time it takes to identify the perpetrator of a security incident.

• Simplify regulatory compliance. Whether organizational security requirements derive from homeland security considerations, privacy regulations or plain financial considerations, eTrust 20/20 helps enforce consistent security policy.

Distinctive Functionalities

Consolidated Monitoring of Physical and IT User Activities. eTrust 20/20 collects and synthesizes security-related data from physical access management systems and heterogeneous IT logs into the eTrust 20/20 security events repository.

Automated Detection of Abnormal Behavior. eTrust 20/20 applies business intelligence inference analysis against the eTrust 20/20 security events repository to determine whether a user’s behavior is normal or suspicious, even if a security violation has not taken place.

Advanced, Easy-to-Use Forensic Capabilities. eTrust 20/20 displays relevant security information into a meaningful GUI, which helps administrators easily scope user activities, collect evidence and identify a perpetrator.

Integration With a Wide Range of Physical Security Systems. CA has teamed up with the leaders in the physical security market through the Open Security Exchange™ to propose the first-of-its-kind set of technical specifications for the interoperability of physical and IT security systems.

Pinkerton-Approved Security Policies. CA has collaborated with Pinkerton Consulting and Investigations Inc., America’s first private investigation firm, founded in 1850, to create some of the security policies and reports included in eTrust 20/20. Pinkerton Consulting and Investigations Inc. is the leading provider of security solutions, including uniformed security officers, consulting and investigations, business intelligence, security systems integration and employee selection services.